CVSS - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	SCHNEIER:E4AA1D...	AI Used to Decrypt Medieval Ciphers_SCHNEIER:E4AA1D57672F67009976BFF7A3662773 Researchers are using machine learning algorithms to decrypt historical pencil-and-paper ciphers.	N/A	N/A	Jun 3, 2026	SCHNEIER
NONE	HACKREAD:1B091E...	Alcasec, “Robin Hood of Spanish Hackers,” Jailed for 31 Months Over Data Theft_HACKREAD:1B091E00C3A0107DC2AB5D2619BD0758 Alcasec, the "Robin Hood of Spanish Hackers," is jailed for 31 months after admitting to stealing and selling Spanish citizens' banking data.	N/A	N/A	Jun 3, 2026	HACKREAD
NONE	THN:0253A7CE4C1...	Beyond the Zero-Day: See Your Network Like an Attacker \| Webinar with HD Moore_THN:0253A7CE4C100FD08457AE372A6A8BFF ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjzZPASJ7ymlBpeDWq_d-byWp58FpBR6tdX6QfLJFFoGRHK9xB5mTbx0guIcMFKFYV87inRtJyM-cKJXI0Td5...	N/A	N/A	Jun 3, 2026	THN
NONE	THN:AEE9050720F...	Shrinking the IAM Attack Surface through Identity Visibility and Intelligence Platforms (IVIP)_THN:AEE9050720F4221CAE4212FDF733F7E8 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiuT21gubKVL2cAsQrEiju_yAE3Pxe1IPxsl9RlGfhMEeis2IuQglnZjwTme6xM1_IJNymXFY1kZsouMGecR2...	N/A	N/A	Jun 3, 2026	THN
HIGH 8.8	9E8F733F-521E-	Exploit for Write-what-where Condition in Linux Linux_Kernel_9E8F733F-521E-504B-886D-5E1C5BC369E4 Local privilege escalation / Container escape: CVE-2026-43284 / CVE-2026-43500 Usage: CGOENABLED=0; go build -ldflags="-s -w" -o dirtyfrag ../dirty...	N/A	N/A	Jun 3, 2026	GITHUBEXPLOIT
CRITICAL 9.1	CVE-2026-4035	Environment Variable Resolution Vulnerability in mlflow/mlflow_CVE-2026-4035 A vulnerability in mlflow/mlflow versions prior to 3.11.0 allows for the resolution of environment variables in AI Gateway secrets, which can be ex...	mlflow	mlflow/mlflow unspecified	Jun 3, 2026	CVE
HIGH 7.1	CVE-2025-15654	WordPress Prague plugin <= 2.2.8 - Cross Site Scripting (XSS) vulnerability_CVE-2025-15654 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Fox-themes Prague allows Reflected XSS. This...	Fox-themes	Prague n/a	Jun 3, 2026	CVE
CRITICAL 9.8	CVE-2026-47065	Apache MINA: Critical Deserialization Allow-list Bypass via resolveProxyClass – ZDRES-232_CVE-2026-47065 ZDRES-232: resolveProxyClass Not Overridden - acceptMatchers Filter Bypass via java.lang.reflect.Proxy Assessment: Fully addressed. When the se...	Apache Software Foundation	Apache MINA 2.2.0, 2.1.0, 2.0.0	Jun 3, 2026	CVE
HIGH 7.5	CVE-2026-41032	Phoenix Contact: Unauthenticated log download vulnerability in the firmware of CHARX SEC-3xxx charging controllers_CVE-2026-41032 It is possible for an unauthenticated adjacent attacker to download log files of the controller, which may disclose some restricted information.	Phoenix Contact	CHARX SEC-3150 1.0.0	Jun 3, 2026	CVE
HIGH 8.8	CVE-2025-15656	WordPress School Management plugin <= 93.2.0 - Privilege Escalation vulnerability_CVE-2025-15656 Incorrect Privilege Assignment vulnerability in Mojoomla School Management allows Privilege Escalation. This issue affects School Management: from...	Mojoomla	School Management n/a	Jun 3, 2026	CVE